Add a compiler group

Issue the following command:

sudo /usr/sbin/groupadd compiler

…and issue the following commands:

sudo chgrp compiler *cc*
sudo chgrp compiler *++*
sudo chgrp compiler ld
sudo chgrp compiler as

…and set permissions:

sudo chmod 750 *cc*
sudo chmod 750 *++*
sudo chmod 750 ld
sudo chmod 750 as

Show files provided by the gcc package:

rpm -q --filesbypkg gcc | grep 'bin'

returns

gcc                       /usr/bin/c89
gcc                       /usr/bin/c99
gcc                       /usr/bin/cc
gcc                       /usr/bin/gcc
gcc                       /usr/bin/gcov
...

The grep selects files contained in the binary directories, /bin, /usr/bin, and /usr/sbin, etc.

Create a group that will access the compiler-binaries:

groupadd compilers

Change ownership of the binary you want to restrict:

chown root:compilers /usr/bin/gcc

Change permissions to be executable only by root and members of the compilers group:

chmod 0750 /usr/bin/gcc